Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/4ef1a8-6790-44dd-9d24-88e2adc2030b/1/zIVpbyGnkwvGye0rR3Oqh77R_7U.roa
File: zIVpbyGnkwvGye0rR3Oqh77R_7U.roa (raw, json)
Hash identifier: owgYl7/cuOdqXMNnw5Qvs6MvDj946+uuXRgr3m7Im84=
Subject key identifier: CC:85:69:6F:21:A7:93:0B:C6:C9:ED:2B:47:73:AA:87:BE:D1:FF:B5
Certificate issuer: /CN=d6e04d509ed1e9cdb354b745999db9417a8cb873
Certificate serial: 01856C1C8E25994C5CC24168686A0EBBD8C2
Authority key identifier: D6:E0:4D:50:9E:D1:E9:CD:B3:54:B7:45:99:9D:B9:41:7A:8C:B8:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1uBNUJ7R6c2zVLdFmZ25QXqMuHM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/4ef1a8-6790-44dd-9d24-88e2adc2030b/1/zIVpbyGnkwvGye0rR3Oqh77R_7U.roa
Signing time: Sun 01 Jan 2023 06:54:48 +0000
ROA not before: Sun 01 Jan 2023 06:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49283
IP address blocks: 2001:67c:27b0::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:1c:8e:25:99:4c:5c:c2:41:68:68:6a:0e:bb:d8:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6e04d509ed1e9cdb354b745999db9417a8cb873
Validity
Not Before: Jan 1 06:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cc85696f21a7930bc6c9ed2b4773aa87bed1ffb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:a5:ed:23:4f:ad:a5:2c:14:83:aa:87:41:f2:
a9:da:0c:e0:46:7b:eb:40:ee:1c:a5:13:3b:c3:71:
c9:df:8b:b1:6f:18:36:6f:e9:69:f6:da:f7:ea:19:
ff:c6:d2:19:fd:08:99:a9:35:78:fd:77:fc:3e:55:
d8:40:72:ea:29:ad:eb:06:68:14:58:92:c3:62:82:
43:4e:3a:6b:29:3d:d5:c7:53:d9:3b:1a:c6:bd:98:
74:ce:4f:9e:5a:78:4e:09:01:d3:24:58:54:ec:14:
15:5d:67:a2:14:b0:6b:12:4a:47:62:34:2c:9f:fe:
8d:c9:94:38:ca:31:49:e3:e8:5a:0f:a2:21:62:92:
95:bc:f6:09:27:9c:13:2b:31:e8:8f:ea:8f:9b:cc:
d0:d3:f8:f1:c9:53:40:2f:12:21:31:cb:2f:d3:20:
16:25:c2:10:49:46:bd:dd:ab:32:17:61:96:8b:96:
31:21:20:19:54:1e:c5:71:b1:f9:73:a2:37:cc:c9:
3f:5a:6c:8f:98:bb:b8:f7:a0:b9:52:f3:d0:7d:63:
f9:7d:d9:13:41:e4:53:18:0d:d6:b6:e2:27:ca:54:
4c:c1:75:e5:6c:1b:da:71:eb:0b:89:d6:7c:63:1a:
26:15:f5:43:17:14:ca:26:64:e3:bd:58:b3:56:ee:
bd:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:85:69:6F:21:A7:93:0B:C6:C9:ED:2B:47:73:AA:87:BE:D1:FF:B5
X509v3 Authority Key Identifier:
keyid:D6:E0:4D:50:9E:D1:E9:CD:B3:54:B7:45:99:9D:B9:41:7A:8C:B8:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1uBNUJ7R6c2zVLdFmZ25QXqMuHM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/4ef1a8-6790-44dd-9d24-88e2adc2030b/1/zIVpbyGnkwvGye0rR3Oqh77R_7U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/4ef1a8-6790-44dd-9d24-88e2adc2030b/1/1uBNUJ7R6c2zVLdFmZ25QXqMuHM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:27b0::/48
Signature Algorithm: sha256WithRSAEncryption
31:9e:d6:dc:e3:40:e3:ab:4d:ad:c3:e5:57:80:77:a9:d3:19:
cb:4e:54:c4:14:78:35:62:c1:d5:1a:00:5e:4c:86:eb:1c:e0:
50:14:4d:bd:10:fb:b2:1c:fc:a4:21:a2:43:f5:0c:da:fa:ca:
15:69:7c:70:04:03:d5:fb:29:83:63:e6:3f:1b:45:df:f1:f2:
78:0b:fe:0e:95:ca:ee:00:29:d2:4e:3b:7d:98:58:75:86:de:
4d:54:40:4a:7b:43:d2:50:0b:65:ea:f9:88:3b:3a:53:2a:44:
96:59:07:4b:56:b8:aa:17:ed:4a:37:fe:58:9f:28:69:1a:94:
c2:08:ac:e8:7a:59:c0:16:21:ef:01:97:ae:d3:71:14:84:8b:
f8:57:6b:58:bc:51:c1:d9:d3:fb:c1:52:4c:e0:58:d8:a7:66:
20:d1:0d:dc:d3:71:30:67:f0:33:7a:01:8f:c4:78:9e:58:07:
b6:67:96:45:f8:02:46:82:f4:96:55:43:0c:49:84:29:22:f5:
75:c3:a9:77:62:b0:fb:d5:ee:7a:de:d2:06:e1:47:ed:3a:e2:
c4:23:b7:4c:99:a5:95:97:66:80:c7:c4:90:08:6e:f4:70:67:
3c:21:5d:da:d6:7e:bb:f8:ce:0a:cc:f8:96:b8:37:f7:c2:35:
d5:a8:72:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:50:25 2024 by rpki-client on console-fra.rpki-client.org